{"id":"https://openalex.org/W2938523278","doi":"https://doi.org/10.1145/3317549.3323411","title":"Deployment optimization of IoT devices through attack graph analysis","display_name":"Deployment optimization of IoT devices through attack graph analysis","publication_year":2019,"publication_date":"2019-05-15","ids":{"openalex":"https://openalex.org/W2938523278","doi":"https://doi.org/10.1145/3317549.3323411","mag":"2938523278"},"language":"en","primary_location":{"id":"doi:10.1145/3317549.3323411","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3317549.3323411","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 12th Conference on Security and Privacy in Wireless and Mobile Networks","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["arxiv","crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/1904.05853","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5049739725","display_name":"Noga Agmon","orcid":"https://orcid.org/0009-0004-1064-670X"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":true,"raw_author_name":"Noga Agmon","raw_affiliation_strings":["Ben-Gurion University of the Negev"],"affiliations":[{"raw_affiliation_string":"Ben-Gurion University of the Negev","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5002391103","display_name":"Asaf Shabtai","orcid":"https://orcid.org/0000-0003-0630-4059"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Asaf Shabtai","raw_affiliation_strings":["Ben-Gurion University of the Negev"],"affiliations":[{"raw_affiliation_string":"Ben-Gurion University of the Negev","institution_ids":["https://openalex.org/I124227911"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5059447087","display_name":"Rami Puzis","orcid":"https://orcid.org/0000-0002-7229-3899"},"institutions":[{"id":"https://openalex.org/I124227911","display_name":"Ben-Gurion University of the Negev","ror":"https://ror.org/05tkyf982","country_code":"IL","type":"education","lineage":["https://openalex.org/I124227911"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Rami Puzis","raw_affiliation_strings":["Ben-Gurion University of the Negev"],"affiliations":[{"raw_affiliation_string":"Ben-Gurion University of the Negev","institution_ids":["https://openalex.org/I124227911"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5049739725"],"corresponding_institution_ids":["https://openalex.org/I124227911"],"apc_list":null,"apc_paid":null,"fwci":4.2221,"has_fulltext":false,"cited_by_count":23,"citation_normalized_percentile":{"value":0.94688484,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"192","last_page":"202"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9980999827384949,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/firmware","display_name":"Firmware","score":0.8804208636283875},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8106269240379333},{"id":"https://openalex.org/keywords/software-deployment","display_name":"Software deployment","score":0.7585320472717285},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.6645496487617493},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.5086163282394409},{"id":"https://openalex.org/keywords/bluetooth","display_name":"Bluetooth","score":0.48052820563316345},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.47979527711868286},{"id":"https://openalex.org/keywords/heuristic","display_name":"Heuristic","score":0.4796655476093292},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.38121598958969116},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.3632623553276062},{"id":"https://openalex.org/keywords/wireless","display_name":"Wireless","score":0.2995486259460449},{"id":"https://openalex.org/keywords/telecommunications","display_name":"Telecommunications","score":0.09485027194023132}],"concepts":[{"id":"https://openalex.org/C67212190","wikidata":"https://www.wikidata.org/wiki/Q104851","display_name":"Firmware","level":2,"score":0.8804208636283875},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8106269240379333},{"id":"https://openalex.org/C105339364","wikidata":"https://www.wikidata.org/wiki/Q2297740","display_name":"Software deployment","level":2,"score":0.7585320472717285},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.6645496487617493},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.5086163282394409},{"id":"https://openalex.org/C546215728","wikidata":"https://www.wikidata.org/wiki/Q39531","display_name":"Bluetooth","level":3,"score":0.48052820563316345},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.47979527711868286},{"id":"https://openalex.org/C173801870","wikidata":"https://www.wikidata.org/wiki/Q201413","display_name":"Heuristic","level":2,"score":0.4796655476093292},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.38121598958969116},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.3632623553276062},{"id":"https://openalex.org/C555944384","wikidata":"https://www.wikidata.org/wiki/Q249","display_name":"Wireless","level":2,"score":0.2995486259460449},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.09485027194023132},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.0},{"id":"https://openalex.org/C9390403","wikidata":"https://www.wikidata.org/wiki/Q3966","display_name":"Computer hardware","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3317549.3323411","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3317549.3323411","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 12th Conference on Security and Privacy in Wireless and Mobile Networks","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:1904.05853","is_oa":true,"landing_page_url":"http://arxiv.org/abs/1904.05853","pdf_url":"https://arxiv.org/pdf/1904.05853","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:1904.05853","is_oa":true,"landing_page_url":"http://arxiv.org/abs/1904.05853","pdf_url":"https://arxiv.org/pdf/1904.05853","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":57,"referenced_works":["https://openalex.org/W58080111","https://openalex.org/W58703277","https://openalex.org/W107001363","https://openalex.org/W1508191694","https://openalex.org/W1529012707","https://openalex.org/W1590752147","https://openalex.org/W1972012147","https://openalex.org/W1972024721","https://openalex.org/W1989186512","https://openalex.org/W1992595252","https://openalex.org/W2009033060","https://openalex.org/W2018222233","https://openalex.org/W2025467856","https://openalex.org/W2041512221","https://openalex.org/W2054127354","https://openalex.org/W2058401212","https://openalex.org/W2069273735","https://openalex.org/W2083270195","https://openalex.org/W2083658929","https://openalex.org/W2087859720","https://openalex.org/W2089396968","https://openalex.org/W2101438812","https://openalex.org/W2110908300","https://openalex.org/W2117694832","https://openalex.org/W2143396794","https://openalex.org/W2143591442","https://openalex.org/W2150890217","https://openalex.org/W2151936469","https://openalex.org/W2158621078","https://openalex.org/W2171053395","https://openalex.org/W2241581468","https://openalex.org/W2245833992","https://openalex.org/W2293605433","https://openalex.org/W2295043193","https://openalex.org/W2323890320","https://openalex.org/W2354520588","https://openalex.org/W2510460164","https://openalex.org/W2516427203","https://openalex.org/W2543431267","https://openalex.org/W2592391525","https://openalex.org/W2603628019","https://openalex.org/W2607806769","https://openalex.org/W2613662164","https://openalex.org/W2621154948","https://openalex.org/W2626631366","https://openalex.org/W2686848947","https://openalex.org/W2756251819","https://openalex.org/W2765845332","https://openalex.org/W2808345099","https://openalex.org/W2887949427","https://openalex.org/W2898584988","https://openalex.org/W2951084996","https://openalex.org/W3022385217","https://openalex.org/W4238286944","https://openalex.org/W4248921909","https://openalex.org/W4251568348","https://openalex.org/W4255848759"],"related_works":["https://openalex.org/W2582981600","https://openalex.org/W4389238932","https://openalex.org/W17155033","https://openalex.org/W4387467152","https://openalex.org/W3010413952","https://openalex.org/W3084814329","https://openalex.org/W2906845177","https://openalex.org/W4200107511","https://openalex.org/W2891427086","https://openalex.org/W1968625315"],"abstract_inverted_index":{"The":[0,151,166],"Internet":[1],"of":[2,10,36,57,68,76,79,90,106,163,172,181,194],"things":[3],"(IoT)":[4],"has":[5],"become":[6],"an":[7,58,61,95],"integral":[8],"part":[9],"our":[11],"life":[12],"at":[13],"both":[14],"work":[15],"and":[16,38,66,109,118,135,190],"home.":[17],"However,":[18],"these":[19],"IoT":[20,69,107,164,182,197],"devices":[21,70,108,183],"are":[22],"prone":[23],"to":[24,28,124,147,177],"vulnerability":[25],"exploits":[26],"due":[27],"their":[29,110],"low":[30,32],"cost,":[31],"resources,":[33],"the":[34,54,64,74,80,88,103,115,149,170,173,179,186,192,195],"diversity":[35],"vendors,":[37],"proprietary":[39],"firmware.":[40],"Moreover,":[41],"short":[42],"range":[43],"communication":[44,111],"protocols":[45],"(e.g.,":[46],"Bluetooth":[47],"or":[48],"ZigBee)":[49],"open":[50],"additional":[51],"opportunities":[52],"for":[53,102],"lateral":[55],"movement":[56],"attacker":[59],"within":[60,185],"organization.":[62],"Thus,":[63],"type":[65],"location":[67,105],"may":[71],"significantly":[72],"change":[73],"level":[75,89],"network":[77,91,159],"security":[78,92],"organizational":[81],"network.":[82],"In":[83],"this":[84],"paper,":[85],"we":[86],"quantify":[87],"based":[93],"on":[94,188],"augmented":[96,174],"attack":[97,175],"graph":[98],"analysis":[99],"that":[100],"accounts":[101],"physical":[104],"capabilities.":[112],"We":[113],"use":[114],"depth-first":[116],"branch":[117],"bound":[119],"(DFBnB)":[120],"heuristic":[121,144],"search":[122],"algorithm":[123],"solve":[125],"two":[126],"optimization":[127],"problems:":[128],"Full":[129],"Deployment":[130],"with":[131,160],"Minimal":[132],"Risk":[133,139],"(FDMR)":[134],"Maximal":[136],"Utility":[137],"without":[138],"Deterioration":[140],"(MURD).":[141],"An":[142],"admissible":[143],"is":[145,154],"proposed":[146,152],"accelerate":[148],"search.":[150],"method":[153],"evaluated":[155],"using":[156],"a":[157],"real":[158],"simulated":[161],"deployment":[162],"devices.":[165],"results":[167],"demonstrate":[168],"(1)":[169],"contribution":[171],"graphs":[176],"quantifying":[178],"impact":[180],"deployed":[184],"organization":[187],"security,":[189],"(2)":[191],"effectiveness":[193],"optimized":[196],"deployment.":[198]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":7},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":5},{"year":2020,"cited_by_count":3},{"year":2019,"cited_by_count":2}],"updated_date":"2026-03-20T23:20:44.827607","created_date":"2025-10-10T00:00:00"}